Re: CVE request: Wordpress XSS

[Tomas Hoger <thoger () redhat com>]

On Tue, 15 Jul 2008 19:22:47 +0200 Hanno Böck <hanno () hboeck de> wrote:

> http://trac.wordpress.org/ticket/7220
>
> Fixed in 2.6.

According to

  http://wordpress.org/development/2008/07/wordpress-26-tyner/

affected Press This! feature is one of the "hot" news in wordpress
2.6.  Affected wp-admin/press-this.php does not seem to exist in
previous stable version 2.5.1.  This is just based on the very quick
look, but it seems this issue may only affect some development SVN
snapshots, but no released version.  Please correct me if I'm wrong.

-- 
Tomas Hoger / Red Hat Security Response Team